This documentation describes the SAML Single Sign-on feature guide for the account/user. The document includes detailed steps for activating the SAML SSO feature and configuration steps for JumpCloud.
To get access to the SAML Single Sign-on for the account/user, the following steps should be completed:
The subscription plan should support SAML Single Sign-on
The account should be active
The super admin of the account and users should be active
SAML SSO Configuration Steps for JumpCloud
Login to the main user’s account
Go to the settings and click the SAML Single Sign-on
Click the Connect Identity Provider button
On the opened page, type the connection name
Copy the Entity ID and Assertion Consumer Service URL and add to the Single Sign-On Configuration section on the JumpCloud
Note: JumpCloud IdP users are required to enter the Entity ID URL in two fields: IdP Entity ID and SP Entity ID. Make sure your users are assigned to your application.
Once URLs are added on JumpCloud, save changes and Export the metadata
Upload the exported metadata to the platform in order to complete the configuration process
Enable or Disable the “Force IdP Re-authentication” option
Enable or Disable the “Prepopulate the User Email Address” option
Click the Create Connection button
Your connection is created!
Information about SAML Single Sign-on Login Session
For JumpCloud after the 1st sign-in the user's email is added automatically, you need to then continue and enter a password.
Contact us for further information, or read our SSO SAML user guide to configure SSO setups for other identity providers.